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Amendments to the Claims 



This listing of claims will replace all prior versions, and listings, of claims in 
the application: 

1 . (Currently amended) A method of supporting multiple encryption schemes 
over a connection on a network comprising: 

transmitting a first request from a source entity to a trusted arbitrator, the first 
request relating at least in part to establishing a first secure connection between the 
source entity and a target entity, the target entity being within a local area network 
(LAN), the LAN coupled to the network and including a connection entity to interact 
with the trusted arbitrator over the network in setting up the secure connection 
between the source entity and the target entity; 

establishing a second secure connection between the source entity and the 
trusted arbitrator using a first encryption scheme in response to the first request; 

periodically t ransmitting a second request from the connection entity to the 
trusted arbitrato r to open a third secure connection between the trusted arbitrator 
and the target entity within the LAN : 

transmitting a first response from the trusted arbitrator to the connection 
entity in response to the second request, the first response informing the connection 
entity that a reguest for the first secure connection between the source entity and 
the target entity exists in the trusted arbitrato r b ei ng associat e d at le ast i n part w i th 
th e first r e qu e st ; and 

establishing athe third secure connection between the trusted arbitrator and 
one of the LAN, the connection entity , or the target entity, using a second encryption 
scheme in response to the first response , to allow communication between the 
source entity and the target entity over the first secure connection, the first secure 
connection comprising the second and third secure connections . 
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2. (Previously presented) The method according to claim 1 , wherein the trusted 
arbitrator authenticates with the source entity before the second secure connection 
using the first encryption scheme is established. 

3. (Original) The method according to claim 2, wherein the trusted arbitrator 
supports multiple authentication schemes and determines, before source entity is 
authenticated, whether a desired authentication scheme used by the source entity is 
supported. 

4. (Previously presented) The method according to claim 1 , wherein the 
connection entity authenticates with the trusted arbitrator before the third secure 
connection using the second encryption scheme is established. 

5. (Original) The method according to claim 1 , wherein at least one among the 
second request and the first response conforms at least substantially to a Hypertext 
Transfer Protocol. 

6. (Original) The method according to claim 1 , wherein at least one among the 
first and second requests is directed to a Uniform Resource Locator associated with 
the trusted arbitrator. 

7. (Original) The method according to claim 1 , wherein during at least a part of a 
period between a time of the transmitting of the first request and a time of the 
transmitting of the first response, the first request is stored in an area associated 
with the connection entity in the trusted arbitrator. 

8. (Original) The method according to claim 1 , wherein if the connection entity 
does not receive the first response within a predetermined period of a time of the 
transmitting of the second request, the transmitting of the second request is 
repeated. 
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9. (Currently amended) A computer readable medium including computer 
readable instructions encoded thereon for: 

transmitting a first request from a source entity to a trusted arbitrator, the first 
request relating at least in part to establishing a first secure connection between the 
source entity and a target entity, the target entity being within a local area network 
(LAN), the LAN coupled to the network and including a connection entity to interact 
with the trusted arbitrator over the network in setting up the secure connection 
between the source entity and the target entity; 

establishing a second secure connection between the source entity and the 
trusted arbitrator using a first encryption scheme in response to the first request; 

periodically transmitting a second request from the connection entity to the 
trusted arbitrato r to open a third secure connection between the trusted arbitrator 
and the target entity within the LAN ; 

transmitting a first response from the trusted arbitrator to the connection 
entity in response to the second request, the first response informing the connection 
entity that a reguest for the first secure connection between the source entity and 
the target entity exists in the trusted arbitrato r b e ing associat e d at l e ast i n part w i th 
th e f i rst r e qu e st ; and 

establishing athe third secure connection between the trusted arbitrator and 
one of t he LAN, the connection entity , or the target entity, using a second encryption 
scheme in response to the first response , to allow communication between the 
source entity and the target entity over the first secure connection, the first secure 
connection comprising the second and third secure connections . 

10. (Previously presented) The computer readable medium of claim 9, further 
comprising computer readable instructions encoded thereon for authenticating the 
source entity before the second secure connection using the first encryption scheme 
is established. 

1 1 . (Original) The computer readable medium of claim 1 0, wherein the trusted 
arbitrator supports multiple authentication schemes and determines, before the 



4 



09/604,184 

source entity is authenticated, whether a desired authentication scheme used by the 
source entity is supported. 

12. (Previously presented) The computer readable medium of claim 9, further 
comprising computer readable instruction encoded thereon for authenticating the 
trusted arbitrator before transmitting the first response. 

13. (Original) The computer readable medium of claim 9, wherein at least one 
among the second request and the first response conforms at least substantially to 
a Hypertext Transfer Protocol. 

14. (Original) The computer readable medium of claim 9, wherein at least one 
among the first and second requests is directed to a Uniform Resource Locator 
associated with the trusted arbitrator. 

15. (Original) The computer readable medium of claim 9, wherein during at least 
a part of a period between a time of the transmitting of the first request and a time of 
the transmitting of the first response, the first request is stored in an area associated 
with the connection entity in the trusted arbitrator. 

16. (Original) The computer readable medium of claim 9, wherein if the 
connection entity does not receive the first response within a predetermined period 
of a time of the transmitting of the second request, the transmitting of the second 
request is repeated. 
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17. (Currently amended) A system in a computer network comprising: 

a local area network (LAN) including a target entity and a connection entity 
coupled to the target entity; 

an acc e ss contro l m e chanism coupl e d to th e comput e r n e twork and to th e 

conn e ct i on e ntity of th e LAN to contro l access to tho computer network by e ntit ie s of 
the LAN; 

a trusted arbitrator coupled to th e acc e ss control m e chanism the LAN via the 
computer network; and 

a source entity coupled to the trusted arbitrator via the computer network to 
transmit a first request from to the trusted arbitrator, the first request relating at least 
in part to establishing a first secure connection between the source entity and the 
target entity, wherein 

the trusted arbitrator establishes a second secure connection between the 
source entity and the trusted arbitrator using a first encryption scheme in response 
to the first request; 

the connection entity periodically transmits a second request from to the 

trusted arbitrator to open a third secure connection between the trusted arbitrator 
and the target entity within the LAN; 

the trusted arbitrator transmits a first response to the connection entity in 

response to the second request, the first response informing the connection entity 
that a request for the first secure connection between the source entity and the 
target entity exists in the trusted arbitrator; and 

the trusted arbitrator establishes the third secure connection between the 
trusted arbitrator and one of the LAN, the connection entity, or the target entity, 
using a second encryption scheme in response to the first response, to allow 
communication between the source entity and the target entity over the first secure 
connection, the first secure connection comprising the second and third secure 
connections. 

th e trust e d arb i trator r e c ei v e s a first r e qu e st for e stab l ishing a first s e cur e 

conn e ction from th e sourc e e ntity to tho targ e t e nt i ty, th e first request relat i ng at 
le ast in part to th e targ e t e nt i ty, 
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i n r e spons e to th e first r e qu e st, a s e cond s e cur e conn e ct i on i s e stab li sh e d 

b e tw ee n th e sourc e e nt i ty and th e trust e d arbitrator us i ng a first e ncrypt i on sch e m e , 

th e conn e ct i on e nt i ty transm i ts a s e cond r e qu e st to th e trust e d arbitrator via 
th e acc e ss contro l m e chan i sm, 

in r e spons e to th e second r e qu e st, th e trust e d arbitrator transmits a f i rst 
r e spons e to th e conn e ct i on e ntity, th e f i rst r e spons e b e ing associat e d at le ast i n part 
with th e f i rst r e qu e st, and 

i n r e spons e to th e first r e spons e , a th i rd s e cur e conn e ct i on b e tw ee n th e 

trust e d arb i trator and th e conn e ct i on e nt i ty i s e stab l ish e d us i ng a s e cond e ncryption 
sch e m e . 

18. (Cancelled) The system according to claim 17, wherein the third_secure 
connection between the trusted arbitrator and the connection entity is established 
between the trusted arbitrator and the connection entity using the access control 
mechanism. 

19. (Cancelled) 

20. (Original) The system according to claim 17, wherein the trusted arbitrator 
authenticates with the source entity before the secure connection using the first 
encryption scheme is established. 

21. (Original) The system according to claim 20, wherein the trusted arbitrator 
authenticates the source entity by verifying identification information sent by the 
source entity. 

22. (Original) The system according to claim 20, wherein the trusted arbitrator 
supports multiple authentication schemes and determines, before authenticating the 
source entity, whether a desired authentication scheme used by the source entity is 
supported. 
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23. (Previously presented) The system according to claim 17, wherein the 
connection entity authenticates with the trusted arbitrator before the third secure 
connection using the second encryption scheme is established. 

24. (Previously presented) The system according to claim 23, wherein the trusted 
arbitrator supports multiple authentication schemes and determines, before being 
authenticated, whether a desired authentication scheme used by the LAN is 
supported. 

25. (Original) The system according to claim 17, wherein the first request is a 
query that conforms at least substantially to a Hypertext Transfer Protocol, and the 
first response is a response that conforms at least substantially to a Hypertext 
Transfer Protocol. 

26. - 29. (Cancelled) 

30. (Original) The system according to claim 17, wherein at least one among the 
first and second requests are directed to a Uniform Resource Locator associated 
with the trusted arbitrator. 

31 . (Original) The system according to claim 17, wherein during at least a part of 
a period between a time of the sending of the first request and a time of the sending 
of the first response, the trusted arbitrator stores the first request in an area 
associated with the connection entity. 

32. (Original) The system according to claim 17, wherein if the connection entity 
does not receive the first response within a predetermined period of a time of the 
sending of the second request, the sending of the second request is repeated. 

33. - 37. (Cancelled) 
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